Steps
Create a role, name it
KUBIT
.sqlCREATE ROLE KUBIT;
Create a user and name it
KUBIT
.
Kubit team will generate and share a password, which you should use to create the user.SQLCREATE USER KUBIT PASSWORD='*****' DEFAULT_ROLE
Share your Snowflake account locator with the Kubit team.
Create a database called
KUBIT
.SQLCREATE DATABASE KUBIT;
Make the
KUBIT
role owner of theKUBIT
database. This will allow us to create and execute tasks that are only available to an owner role.SQLGRANT OWNERSHIP ON DATABASE KUBIT TO ROLE KUBIT;
Create a Data Warehouse called
KUBIT
(size depends on your data volume)Grant the
KUBIT
role the following privileges:MONITOR | USAGE | OPERATE
SQLCREATE OR REPLACE WAREHOUSE KUBIT WAREHOUSE_SIZE=... INITIALLY_SUSPENDED=TRUE; GRANT MONITOR ON WAREHOUSE KUBIT TO ROLE KUBIT; GRANT USAGE ON WAREHOUSE KUBIT TO ROLE KUBIT; GRANT OPERATE ON WAREHOUSE KUBIT TO ROLE KUBIT;
Add read-only (SELECT) permissions to the
KUBIT
role to your intended data tables/views.
π Best Practice
Create one more user, role and warehouse for development purposes in order to isolate the impact on the production environment and avoid accidents.